| VID |
26047 |
| Severity |
30 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The hotfix (Q329115) for the "ID Spoofing Vulnerability in Certificate Validation" has not been applied.
The Basic Constraints field, one of several optional fields defined by the IETF Profile of the X.509 certificate standard, indicates the maximum allowable length of the certificate's chain and whether the certificate is a Certificate Authority or an end-entity certificate.
However, due to a flaw in checking the Basic Constraints field when validating a digital certificate, an attacker can forge a seemingly valid certificate. Using this vulnerability, an attacker can spoof trusted Web sites, digitally signed E-Mails, certificate-based authentication, and Authenticode signatures.
* Note: This check requires an account with Guest or upper privileges which can access the registry of the remote host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/MS02-050.asp
* Platforms Affected:
Microsoft Windows 98
Microsoft Windows 98 Second Edition
Microsoft Windows Me
Microsoft Windows NT 4.0
Microsoft Windows NT 4.0, Terminal Server Edition
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Office for Mac
Microsoft Internet Explorer for Mac
Microsoft Outlook Express for Mac |
| Recommendation |
Download the appropriate patch from each download locations and apply it on your system, as listed in Microsoft's security bulletin MS02-050, http://www.microsoft.com/technet/security/bulletin/MS02-050.asp
-- OR --
Patches for Windows platforms are also available from the Microsoft Windows Update Web site, http://windowsupdate.microsoft.com . Windows Update detects what version of Windows you are running and offers the appropriate patch. |
| Related URL |
CVE-2002-1183,CVE-2002-0862 (CVE) |
| Related URL |
5410 (SecurityFocus) |
| Related URL |
9776 (ISS) |
|
